What is the Fenced Frame API?
The Fenced Frame API is an experimental web API that provides functionality for controlling content embedded in <fencedframe> elements. Unlike traditional iframes, fenced frames are designed from the ground up with privacy as a core principle, enabling use cases like targeted advertising while preventing cross-site data leakage.
For web developers building modern applications that need to integrate third-party content responsibly, understanding the Fenced Frame API is essential for the future of privacy-conscious web development. The API addresses a fundamental tension in web development: the need to embed third-party content for legitimate business purposes versus the imperative to protect user privacy.
Key Takeaways
- Fenced frames create strict isolation between embedded content and the embedding page
- Content is configured via FencedFrameConfig objects, not src attributes
- Integration with Privacy Sandbox APIs enables privacy-preserving advertising
- Currently supported in Chromium browsers with ongoing expansion efforts
How Fenced Frames Differ from Iframes
Understanding the fundamental differences between fenced frames and traditional iframes is crucial for developers considering adoption. While they look similar to users, their underlying behavior is fundamentally different.
Communication Restrictions
The most significant difference is how they handle communication. With traditional iframes, content embedded within can communicate freely with the embedding page through various mechanisms: the DOM via parent.frameElement, the postMessage API, and even shared JavaScript scope for same-origin content. Fenced frames, by contrast, completely restrict this communication channel. MDN Web Docs - fencedframe element
| Feature | <iframe> | <fencedframe> |
|---|---|---|
| DOM access to parent | Yes (same-origin) | No |
| postMessage communication | Yes | No |
| URL visibility | Transparent | Opaque |
| Cross-site data access | Possible | Restricted |
Content Configuration Model
Traditional iframes use a simple src attribute to specify content, making the URL visible to the embedding page. Fenced frames work completely differently--content is not set via a src attribute. Instead, a utilizing API like the Protected Audience API generates a FencedFrameConfig object, which is assigned to the fenced frame's config property. The URL becomes opaque to the embedding context.
// Traditional iframe
const iframe = document.createElement('iframe');
element.src = 'https://example.com/content';
// Fenced frame - content set via config
const frame = document.createElement('fencedframe');
frame.config = await navigator.runAdAuction({ resolveToConfig: true });
DOM Access Restrictions
Both the embedding document and the content within a fenced frame are prevented from accessing each other's DOM. This architectural decision prevents a wide range of fingerprinting and tracking techniques that are possible with traditional iframes. MDN Web Docs - fencedframe element
1// Create a fenced frame element2const frame = document.createElement('fencedframe');3 4// Set dimensions (defaults to 300x150 if not specified)5frame.width = 640;6frame.height = 320;7 8// Content is set via FencedFrameConfig from Protected Audience API9const frameConfig = await navigator.runAdAuction({10 // Auction configuration options11 resolveToConfig: true,12});13 14// Assign the config to display the content15frame.config = frameConfig;16 17// Add to the page18document.body.appendChild(frame);19 20// Inside the fenced frame, use the fence object for reporting21if (window.fence) {22 fence.reportEvent({23 eventType: 'click',24 destination: ['buyer', 'seller']25 });26}Privacy Sandbox API Integration
The Fenced Frame API is part of Google's Privacy Sandbox initiative, designed to phase out third-party cookies while providing legitimate use cases for personalized advertising and measurement. This initiative creates APIs that enable relevant advertising without relying on individual-level cross-site tracking. As privacy regulations tighten globally, understanding these modern approaches becomes increasingly important for AI-powered digital solutions that balance functionality with user privacy. Google Privacy Sandbox
Protected Audience API
The Protected Audience API (formerly FLEDGE) is the primary use case for fenced frames, enabling interest-based advertising while keeping user interest information isolated from the publishing site:
- A user visits sites indicating interest in certain topics (tracked locally by their browser)
- When visiting a site with ad inventory, an auction runs in their browser
- The auction considers user interests and available ads, selecting a winner
- The winning ad renders in a fenced frame, completely isolated from the page
Shared Storage API
The Shared Storage API provides access to unpartitioned, cross-site data in a secure environment. Results can be calculated and displayed within a fenced frame, enabling:
- Measuring ad reach without individual-level tracking
- A/B testing across sites without user-level assignment storage
- Frequency capping without persistent user identifiers
- Content personalization based on cross-site behavior MDN Web Docs - Fenced Frame API
Attributes and Configuration
Width and Height
<fencedframe width="640" height="480"></fencedframe>
The width and height attributes specify dimensions in CSS pixels, defaulting to 300x150 pixels if not specified. Unlike some replaced elements, fenced frames do not respect the object-fit CSS property--their content fills the available space according to the internal content dimensions specified in the config. MDN Web Docs - fencedframe element
Allow Attribute
The allow attribute specifies a Permissions Policy for the fenced frame, but fenced frames have a very limited set of features that can be enabled--only specific Privacy Sandbox features:
| Feature | Description |
|---|---|
attribution-reporting | Attribution measurement |
private-aggregation | Aggregated reporting |
shared-storage | Cross-site storage access |
shared-storage-select-url | URL selection from storage |
Standard web features controlled by Permissions Policy (camera, geolocation, etc.) are completely unavailable within fenced frames, as enabling them would create a communication channel that could be exploited for tracking.
Browser Support and Compatibility
Current Availability
As of early 2025, the Fenced Frame API has limited browser support. It is available in Chromium-based browsers (Chrome and Edge) but is not supported in Firefox or Safari. This limited availability means the API is not yet suitable for production use in all scenarios, though adoption is growing. MDN Web Docs - Fenced Frame API
| Browser | Support |
|---|---|
| Chrome | Yes (full support) |
| Edge | Yes |
| Firefox | No (under consideration) |
| Safari | No (no public signals) |
Feature Detection
function isFencedFrameSupported() {
return HTMLFencedFrameElement !== undefined;
}
// Check for specific Privacy Sandbox API features
if ('runAdAuction' in navigator) {
// Protected Audience API is available
}
if ('sharedStorage' in window) {
// Shared Storage API is available
}
Progressive Enhancement
For applications considering fenced frame adoption, implement progressive enhancement. When fenced frames are unsupported, fall back to traditional iframes while being transparent about privacy trade-offs with users.
Performance Considerations
Resource Loading Behavior
Fenced frames follow similar resource loading patterns to iframes with unique privacy-focused characteristics:
- Content loading occurs in an isolated context, preventing main thread interference from third-party scripts
- The opaque URL model prevents the embedding page from preloading resources
- Communication restrictions mean the embedding page cannot optimize based on frame content
- Core Web Vitals impact should be monitored in production
Best Practices
- Size explicitly: Always specify width and height attributes to prevent layout shifts and improve CLS metrics
- Reserve space: Use CSS containment or fixed dimensions to prevent CLS
- Lazy loading: Consider loading fenced frames only when needed (e.g., when scrolled into view)
- Monitor metrics: Track how fenced frames impact LCP and CLS in your specific implementation
Proper performance optimization directly supports search engine optimization efforts, as Core Web Vitals are key ranking factors for modern websites.
Accessibility Considerations
Providing Labels
Like iframes, fenced frames should include a title attribute that describes the content for assistive technology users:
<fencedframe
title="Advertisement: Product X from Company Y"
width="640"
height="320">
</fencedframe>
Without this label, users navigating with screen readers must enter the fenced frame to determine its content, creating a confusing context shift. MDN Web Docs - fencedframe element
Focus Management
User-initiated focus navigation (click, tap, tab) can move focus across the fenced frame boundary without restriction. However, programmatic focus attempts via HTMLElement.focus() from outside the frame are blocked, preventing potential information leakage through focus timing patterns.
Fenced frames enable privacy-preserving implementations across multiple domains
Privacy-Preserving Advertising
Interest-based targeting without cross-site tracking, attribution without user profiling, frequency capping without persistent identifiers.
Content Personalization
Cross-site recommendation without user profiling, localized content without exposing location, product recommendations without user tracking.
Measurement and Analytics
Reach measurement without individual tracking, attribution modeling without exposing journeys, aggregate business insights.
Third-Party Widgets
Embedded content with guaranteed isolation, preventing data leakage between sites while maintaining functionality.
Frequently Asked Questions
Sources
- MDN Web Docs: Fenced Frame API - Comprehensive official documentation covering API overview, interfaces, and usage patterns
- MDN Web Docs: fencedframe element - HTML element reference with attributes and examples
- Google Privacy Sandbox: Fenced Frames - Google's official documentation on the Privacy Sandbox initiative